This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft File: ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft (raw, json) Hash identifier: t+toUnDcSVSBeIjiea6L9BAbnso2Uwlm1/0ETL76n08= Subject key identifier: CE:9E:67:8D:4B:DB:33:AD:C6:88:CF:18:4B:58:81:59:93:F4:09:36 Authority key identifier: C9:C3:0B:7C:57:E2:F0:16:DB:1F:01:C0:9E:59:2E:05:04:74:C9:A6 Certificate issuer: /CN=A9199656/serialNumber=C9C30B7C57E2F016DB1F01C09E592E050474C9A6 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycMLfFfi8BbbHwHAnlkuBQR0yaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft Manifest number: 7B Signing time: Tue 23 Dec 2025 05:39:58 +0000 Manifest this update: Tue 23 Dec 2025 05:39:57 +0000 Manifest next update: Tue 30 Dec 2025 05:39:57 +0000 Files and hashes: 1: ycMLfFfi8BbbHwHAnlkuBQR0yaY.crl (hash: /UrzpcvYYNMmK1WDeY+jFQTgcbXTwasM5+P2XnchG/s=) 2: 45D237A423E211F0A5DCED27C4F9AE02.roa (hash: KYNpwowTPF1wR7KTk50JO1GxjKATo9B/T8x/blAJYNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.crl rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycMLfFfi8BbbHwHAnlkuBQR0yaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199656, serialNumber=C9C30B7C57E2F016DB1F01C09E592E050474C9A6 Validity Not Before: Dec 23 05:39:57 2025 GMT Not After : Dec 30 05:39:57 2025 GMT Subject: CN=694a2b2d-cbea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:45:cc:06:67:3b:5f:6a:0c:ad:c8:fd:b9:97: 37:a4:f3:ce:33:31:fc:29:d4:f0:df:e9:3e:b4:29: 4b:d4:15:88:d3:57:53:3e:e5:e2:82:ae:1b:22:46: 1e:eb:32:79:34:6f:66:f1:d2:e4:53:9d:ed:3f:22: 99:aa:86:59:0e:54:37:78:ab:bb:9d:e1:d8:a7:d2: f4:1f:c8:3a:a3:74:e5:77:ef:b3:02:21:65:22:e7: 63:79:f0:a2:ea:36:fd:57:4d:d3:78:4d:6c:b8:61: e8:11:33:b6:82:61:e1:4a:23:23:ff:c9:10:55:f9: 5f:88:6e:17:2f:6a:26:95:e9:04:c7:a5:34:c4:07: 07:0d:53:8f:c8:ef:06:71:b2:d8:57:ec:5b:c6:f9: 4d:5a:45:91:e2:e6:73:25:fd:e5:55:66:1a:a3:88: 10:9e:73:76:4d:17:17:86:90:0f:fa:0b:1c:b6:4c: 7b:92:10:dd:bb:da:db:ea:13:40:2b:d4:f1:49:e4: 25:6f:28:48:f7:e7:ac:d7:0a:bc:ab:ed:61:63:87: 3a:cb:ae:17:e3:4d:9e:f1:ed:20:12:dd:50:df:d4: 09:88:6f:23:74:b8:21:e7:cb:c5:63:15:77:48:9f: c3:47:06:6f:4d:14:56:44:0a:3d:6e:de:e1:91:fd: d8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9E:67:8D:4B:DB:33:AD:C6:88:CF:18:4B:58:81:59:93:F4:09:36 X509v3 Authority Key Identifier: keyid:C9:C3:0B:7C:57:E2:F0:16:DB:1F:01:C0:9E:59:2E:05:04:74:C9:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycMLfFfi8BbbHwHAnlkuBQR0yaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:d0:a9:60:5e:d4:7b:d7:88:57:42:8b:7b:c6:30:2f:df:61: b8:fd:86:55:4e:9a:ee:34:39:e5:e9:ec:36:48:cc:ec:52:16: fe:f2:4e:51:55:1f:20:a8:14:f8:ec:2d:55:57:b8:e6:ef:0b: 4e:12:6c:0b:96:52:ef:69:da:bd:aa:11:d4:94:82:a9:b1:7d: 55:97:e7:4e:84:2f:18:32:78:9c:ec:e0:16:2f:6d:b4:88:b0: ca:1e:3d:47:11:a1:23:c0:63:be:5c:3c:d0:ad:43:c3:a4:e9: 74:45:77:7f:bc:65:6a:f3:a5:00:2f:2a:c1:65:43:4a:3a:c3: 5e:c3:06:b0:d0:53:b4:18:fe:5e:2b:63:38:a4:8a:7a:a3:a7: 8c:45:1d:d7:c7:80:48:09:a2:c2:de:19:9b:e7:e6:90:a8:dd: 5c:2b:9d:ac:42:4a:ef:37:a9:ed:1c:48:4e:c0:c8:03:92:58: 3a:fd:0d:ab:3d:eb:43:3f:fd:bd:42:ca:38:82:30:55:c5:0d: 1a:5b:37:b0:e2:00:65:29:ec:fd:e7:44:ff:25:d8:46:2a:c3: f6:21:cf:03:0f:98:ba:b2:72:eb:74:e0:f8:7e:38:bf:f9:63: e8:ad:69:13:b1:46:a6:fe:87:5a:e4:c0:44:c3:f9:97:1b:6f: 48:31:51:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTY1NjExMC8GA1UEBRMoQzlDMzBCN0M1N0UyRjAxNkRCMUYwMUMwOUU1OTJFMDUw NDc0QzlBNjAeFw0yNTEyMjMwNTM5NTdaFw0yNTEyMzAwNTM5NTdaMBgxFjAUBgNV BAMMDTY5NGEyYjJkLWNiZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtRcwGZztfagytyP25lzek884zMfwp1PDf6T60KUvUFYjTV1M+5eKCrhsiRh7r Mnk0b2bx0uRTne0/IpmqhlkOVDd4q7ud4din0vQfyDqjdOV377MCIWUi52N58KLq Nv1XTdN4TWy4YegRM7aCYeFKIyP/yRBV+V+IbhcvaiaV6QTHpTTEBwcNU4/I7wZx sthX7FvG+U1aRZHi5nMl/eVVZhqjiBCec3ZNFxeGkA/6Cxy2THuSEN272tvqE0Ar 1PFJ5CVvKEj356zXCryr7WFjhzrLrhfjTZ7x7SAS3VDf1AmIbyN0uCHny8VjFXdI n8NHBm9NFFZECj1u3uGR/diRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzp5njUvb M63GiM8YS1iBWZP0CTYwHwYDVR0jBBgwFoAUycMLfFfi8BbbHwHAnlkuBQR0yaYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5NjU2L0E1RTdDRDc2MjNF MTExRjBBNjUwRUEyM0M0RjlBRTAyL3ljTUxmRmZpOEJiYkh3SEFubGt1QlFSMHlh WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWNNTGZGZmk4QmJiSHdIQW5sa3VCUVIweWFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5 NjU2L0E1RTdDRDc2MjNFMTExRjBBNjUwRUEyM0M0RjlBRTAyL3ljTUxmRmZpOEJi Ykh3SEFubGt1QlFSMHlhWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACDQqWBe1HvXiFdCi3vGMC/fYbj9hlVOmu40OeXp7DZIzOxSFv7yTlFV HyCoFPjsLVVXuObvC04SbAuWUu9p2r2qEdSUgqmxfVWX506ELxgyeJzs4BYvbbSI sMoePUcRoSPAY75cPNCtQ8Ok6XRFd3+8ZWrzpQAvKsFlQ0o6w17DBrDQU7QY/l4r Yzikinqjp4xFHdfHgEgJosLeGZvn5pCo3VwrnaxCSu83qe0cSE7AyAOSWDr9Das9 60M//b1CyjiCMFXFDRpbN7DiAGUp7P3nRP8l2EYqw/YhzwMPmLqycut04Ph+OL/5 Y+itaROxRqb+h1rkwETD+Zcbb0gxUYs= -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:12 2025 by rpki-client